flash-images: Harden mount options of /boot

author Peter Müller <peter.mueller@ipfire.org>

Sat, 11 Jun 2022 06:47:49 +0000 (06:47 +0000)

committer Peter Müller <peter.mueller@ipfire.org>

Mon, 13 Jun 2022 15:39:52 +0000 (15:39 +0000)
author Peter Müller <peter.mueller@ipfire.org>
Sat, 11 Jun 2022 06:47:49 +0000 (06:47 +0000)
committer Peter Müller <peter.mueller@ipfire.org>
Mon, 13 Jun 2022 15:39:52 +0000 (15:39 +0000)
diff --git a/lfs/flash-images b/lfs/flash-images

index 3cf81fb6dd988b79742a42708d931e83679af6ea..8a033c310c7491446fa6e63b11aa4e56b087f3fa 100644 (file)
--- a/lfs/flash-images
+++ b/lfs/flash-images
@@ -1,7 +1,7 @@
  ###############################################################################
  #                                                                             #
  # IPFire.org - A linux based firewall                                         #
-# Copyright (C) 2007-2021  IPFire Team  <info@ipfire.org>                     #
+# Copyright (C) 2007-2022  IPFire Team  <info@ipfire.org>                     #
  #                                                                             #
  # This program is free software: you can redistribute it and/or modify        #
  # it under the terms of the GNU General Public License as published by        #
@@ -167,7 +167,7 @@ endif
  
         # Create /etc/fstab
         printf "$(FSTAB_FMT)" "$$(blkid -o value -s UUID $(PART_BOOT))" "/boot" \
-               "auto" "defaults" 1 2 >  $(MNThdd)/etc/fstab
+               "auto" "defaults,nodev,noexec,nosuid" 1 2 >  $(MNThdd)/etc/fstab
  ifeq "$(EFI)" "1"
         printf "$(FSTAB_FMT)" "$$(blkid -o value -s UUID $(PART_EFI))" "/boot/efi" \
                 "auto" "defaults" 1 2 >> $(MNThdd)/etc/fstab
author	Peter Müller <peter.mueller@ipfire.org>
	Sat, 11 Jun 2022 06:47:49 +0000 (06:47 +0000)
committer	Peter Müller <peter.mueller@ipfire.org>
	Mon, 13 Jun 2022 15:39:52 +0000 (15:39 +0000)